ghsa-7mr8-235r-cv8h
Vulnerability from github
Published
2023-12-04 06:30
Modified
2023-12-07 18:30
Severity
Details
In 5G Modem, there is a possible system crash due to improper error handling. This could lead to remote denial of service when receiving malformed RRC messages, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01130256; Issue ID: MOLY01130256 (MSV-848).
{ "affected": [], "aliases": [ "CVE-2023-32842" ], "database_specific": { "cwe_ids": [ "CWE-617" ], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2023-12-04T04:15:07Z", "severity": "HIGH" }, "details": "In 5G Modem, there is a possible system crash due to improper error handling. This could lead to remote denial of service when receiving malformed RRC messages, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01130256; Issue ID: MOLY01130256 (MSV-848).", "id": "GHSA-7mr8-235r-cv8h", "modified": "2023-12-07T18:30:29Z", "published": "2023-12-04T06:30:16Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-32842" }, { "type": "WEB", "url": "https://corp.mediatek.com/product-security-bulletin/December-2023" } ], "schema_version": "1.4.0", "severity": [ { "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "type": "CVSS_V3" } ] }
Loading...